BE CAREFUL

Anonymous data

EU Commission advisory body (Article 29 Working Party) suggests to protect also anonymous data and consider them as personal data.
Ensuring non-linkability and avoid re-identification is challenging and needs to be re-ensured over time since technology
and datasets availability are evolving rapidly.

BE CAREFUL

Storing data locally

Storing data on devices or local memories simplifies your privacy related requirements. For example
usually there is no need to inform Data Protection Authority about processing. For more info
check this

ATTENTION!

Pseudonymous data

When storing sensitive data without storing also personally identifiable information, then such data can be considered pseudo-anonymised.

Although pseudonymous data do not reveal directly the identity of data subjects, it can be combined with other external information to reveal people identity.
For example check these two cases that lead to big privacy scandals:

Therefore, even though pseudonymization is considered as a good security practice, it is very challenging to implement it properly, and data is still considered personal and need to be protected according to EU laws.

ATTENTION!

Potentially sensitive

According to the current
EU Data Protection Directives , if you collect data that could disclose users' health status
then this data is considered privacy sensitive and you must apply additional security safeguards.